Slashdot Mirror

← Back to Stories (view on slashdot.org)

Security Hole In SNMP

Posted by timothy on from the so-never-mail-passwords dept.

wiredog writes: "From ZDNET comes the news that there is apparently a serious security flaw in the Simple Network Management Protocol, used to control routers and other network devices." An anonymous reader points to the CERT advisory as well.

6 of 267 comments (clear)

  1. this is it. by Atrophis · · Score: -1, Offtopic

    This has to be very interesting for game devlopers that are writing specifically for win32 and have only thought about porting to other OS's but have not due to lacking directx8 support.

    --

    i cant seem to come up with a sig.
    1. Re:this is it. by Atrophis · · Score: -1, Offtopic

      doh!, wrong topic... wheres my crack rock again.

      --

      i cant seem to come up with a sig.
  2. Re:Why am I not allowed to metamoderate.. (OT) by quan74 · · Score: 0, Offtopic

    Check your Karma... If it is below 1 you cannot metamoderate till you post something that gets modded up....

    Really? hmmm:
    Have you Meta Moderated Today?
    This page was generated by a Flock of Random Ninjas for quan74 (451034).

    From my user info page:

    Karma 0 (mostly the sum of moderation done to users comments)

    Next time think before you type.
    Thank you.

  3. Re:Not a SNMP hole by saider · · Score: 0, Offtopic

    This means the one hack(crack) will effect net-snmp but not MS's crappy agent and vice-versa.

    Tee-hee. A little of the slashdot trademark smack-MS-at-every-opportunity-even-when-it-isn't-r elevant comes through. The poster could have made his point without it, but instead chose to insert the "crappy" modifier before MS.

    I don't know much about the various implementations and Microsoft's implementation may very well leave much to be desired. But cheap shots are still cheap shots.

    If this post is not moderated -1:Offtopic, then Slashdot's crappy moderation system must be at fault.

    --


    Remember, You are unique...just like everyone else.
  4. We're getting hit hard by Phibz · · Score: 1, Offtopic
    I don't know how many of you are seeing this but in the last 5 days we've had several main machines hit including our main nfs home directory server. All Solaris 8 machines. :-(


    We've noticed that all are from a group called "NSDAP" something like the Nazi propaganda arm of the Third Reich.


    The files we've found left behind (hacker droppings) are /usr/lib/vold/nsdap which contains bunches about the group. /usr/bin/ls and all the other likely canidates, ps, find, su, ssh, sh, etc. are replaced. They ran a shell on port 77.
    All logs and sniffer dumps etc. were emailed to angelz1578@usa.net


    Rather juvenile in my opinion. Oh well its always something.


    Trey

  5. yikes! by -=Izzy=- · · Score: -1, Offtopic

    HTTP/1.1 200 OK Date: Tue, 12 Feb 2002 22:39:33 GMT Server: Apache/1.3.20 (Unix) mod_perl/1.25 mod_gzip/1.3.19.1a X-Powered-By: Slash 2.003000 Connection: close Transfer-Encoding: chunked Content-Type: text/html; charset=iso-8859-1
    OK
    The server encountered an internal error or misconfiguration and was unable to complete your request.
    Please contact the server administrator, pater@slashdot.org and inform them of the time the error occurred, and anything you might have done that may have caused the error.

    More information about this error may be available in the server error log.

    Apache/1.3.20 Server at slashdot.org Port 80